26 Oct 2018

Most enterprise vulnerabilities remain unpatched a month after discovery

“The majority of vulnerabilities remain unpatched by the enterprise a month after discovery, researchers have found. According to CA Veracode’s latest State of Software Security (SOSS) report, up to 70 percent of bugs remain unpatched four weeks after disclosure, and close to 55 percent are not resolved three months after

Read More
26 Oct 2018

Abandoned Websites Haunt Fortune 500 Corporations

“Websites that never go away continue to bring security threats to their owners, says a new report. Old Web applications don’t go away — they linger and spread security vulnerabilities around their organizations. These ‘ghost sites’ are critical assets for criminals and weaknesses for enterprises, according to a new report

Read More
26 Oct 2018

It’s Time to Organize Volunteer Hackers in Civilian Cyber Corps, Think Tank Says

A recent proposal from the New America think tank recommends the creation of a “Civilian Cyber Corps” organized along the lines of the Civil Air Patrol and volunteer firefighters. Like these two groups, the corps would be made up of unpaid volunteers and the estimate for building a corps across

Read More
25 Oct 2018

DoD bug bounty program to expand to more sensitive systems

“In yet another contract allowing outside hackers to test systems for vulnerabilities, the Department of Defense is opening the doors to more sensitive systems. In the past the bug bounties, as they’re known, focused on public-facing DoD websites. They allow vetted hackers to search for vulnerabilities for cash payouts that

Read More
25 Oct 2018

Yahoo agrees to pay $50 million to settle data breach lawsuit

“Yahoo must pay $50 million in damages to victims of one of the largest data breaches on record. On Monday, a settlement was filed with the United States District Court in California which laid to rest the two-year-old lawsuit. Yahoo has agreed to pay $50 million in compensation to victims

Read More
25 Oct 2018

Phishing Report Shows Microsoft, Paypal, & Netflix as Top Targets

“A new phishing report has been released that keeps track of the top 25 brands targeted by bad actors. Of these brands, Microsoft, Paypal, and Netflix are the top brands impersonated by phishing attacks. Email security provider Vade Secure tracks the 25 most spoofed brands in North America that are impersonated in

Read More
24 Oct 2018

Trade.io loses $7.5Mil worth of cryptocurrency in mysterious cold wallet hack

“Cryptocurrency exchange Trade.io admitted to a security breach on Sunday. The company said that an unknown party has withdrawn over 50 million Trade tokens (TIO) from its cold storage wallets. The funds are worth over $7.5 million at Monday’s TIO trading price. It is unclear how the hack happened. Cold

Read More
23 Oct 2018

The most interesting Internet-connected vehicle hacks on record

“Several years ago, a team of IOActive researchers demonstrated how they could compromise a connected car system in order to run a Jeep off the road. Since then, automakers and connected vehicle service vendors have begun to take the concept of car cybersecurity seriously. The company in question has been

Read More
23 Oct 2018

Hackers Breach Healthcare.gov, access the data of 75,000 users

“Hackers accessed sensitive personal data of more than 75,000 Healthcare.gov customers after one of its systems was breached, according to a Friday statement by the Centers for Medicare and Medicaid Services. According to the statement, CMS officials detected ‘anomalous system activity’ in the Federally Facilitated Exchanges system—one that health care

Read More
23 Oct 2018

Russian Intel Chief: Internet Should be Controlled By ‘Proper Authorities’

“‘Fighting terrorism’ is how the Kremlin explains its latest effort to broaden its surveillance of Russian society and increase its control over internet content. But the program is also Moscow’s latest step toward digital isolationism. ‘For us professionals, it has long been obvious that cyberspace should be under the control of

Read More